<!--
  This file is a part of the open-eBackup project.
  This Source Code Form is subject to the terms of the Mozilla Public License, v. 2.0.
  If a copy of the MPL was not distributed with this file, You can obtain one at
  http://mozilla.org/MPL/2.0/.
  
  Copyright (c) [2024] Huawei Technologies Co.,Ltd.
  
  THIS SOFTWARE IS PROVIDED ON AN "AS IS" BASIS, WITHOUT WARRANTIES OF ANY KIND,
  EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO NON-INFRINGEMENT,
  MERCHANTABILITY OR FIT FOR A PARTICULAR PURPOSE.
  -->


<!DOCTYPE html
  PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
      <meta http-equiv="Content-Type" content="text/html; charset=utf-8">
   
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="DC.Type" content="topic">
<meta name="DC.Title" content="Creating a User">
<meta name="product" content="">
<meta name="DC.Relation" scheme="URI" content="en-us_topic_0000002200115389.html">
<meta name="prodname" content="">
<meta name="version" content="">
<meta name="brand" content="">
<meta name="DC.Publisher" content="20250306">
<meta name="prodname" content="csbs">
<meta name="documenttype" content="usermanual">
<meta name="DC.Format" content="XHTML">
<meta name="DC.Identifier" content="EN-US_TOPIC_0000002200115333">
<meta name="DC.Language" content="en-us">
<link rel="stylesheet" type="text/css" href="public_sys-resources/commonltr.css">
<title>Creating a User</title>
</head>
<body style="clear:both; padding-left:10px; padding-top:5px; padding-right:5px; padding-bottom:5px"><a name="EN-US_TOPIC_0000002200115333"></a><a name="EN-US_TOPIC_0000002200115333"></a>

<h1 class="topictitle1">Creating a User</h1>
<div><p class="MsoNormal" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p41436061">The system administrator can create users of different roles in view of service requirements to control user operation permissions and ensure service system stability and service data security.</p>
<div class="section" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_section37380229"><h4 class="sectiontitle">Context</h4><p class="MsoNormal" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p4876231141518">For details about user roles and permissions, see <a href="en-us_topic_0000002200029773.html#EN-US_TOPIC_0000002200029773">Built-in User Roles</a>.</p>
</div>
<div class="section" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_section029016820188"><h4 class="sectiontitle">Precautions</h4><ul id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_ul590633285910"><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li13906133285916">The system function permissions of custom users are the same as those of the data protection administrator.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li833111596362">You need to manually assign resource sets to the <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b1359271519104">Data Protection Administrator</strong> role. Other built-in user roles (<span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_uicontrol913991812117"><b>System Administrator</b></span>, <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_uicontrol7139171813117"><b>Auditor</b></span>, <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_uicontrol10139201821114"><b>Disaster Recovery Administrator</b></span>, and <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_uicontrol18139718101120"><b>Remote Device Administrator</b></span>) cannot be assigned custom resource sets, but are assigned the default public resource set by default. (The OceanProtect E6000 Appliance does not support <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_uicontrol137134522135"><b>Disaster Recovery Administrator</b></span> and <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_uicontrol1867919091413"><b>Remote Device Administrator</b></span>.)</li></ul>
</div>
<div class="section" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_section364572881212"><h4 class="sectiontitle">Procedure</h4><ol id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_ol48781090"><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232618_li3061316"><span>Choose <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_uicontrol48134614351"><b>System &gt; Security &gt; RBAC &gt; Users</b></span>.</span></li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_li59951813329"><span>Click <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_uicontrol184043980343756"><b>Create</b></span>.</span></li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_li10343122915243"><span>Set basic information such as user login and roles.</span><p><div class="p" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p157131429182420"><a href="#EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_d0e19542">Table 1</a> describes the parameters.
<div class="tablenoborder"><a name="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_d0e19542"></a><a name="en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_d0e19542"></a><table cellpadding="4" cellspacing="0" summary="" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_d0e19542" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Basic user parameters</caption><colgroup><col style="width:24.27%"><col style="width:75.73%"></colgroup><thead align="left"><tr id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_row8183431"><th align="left" class="cellrowborder" valign="top" width="24.27%" id="mcps1.3.4.2.3.2.1.2.2.3.1.1"><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p58878140">Parameter</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="75.73%" id="mcps1.3.4.2.3.2.1.2.2.3.1.2"><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p4400013">Description</p>
</th>
</tr>
</thead>
<tbody><tr id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_row230610161099"><td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.1 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p13307416998">User Type</p>
</td>
<td class="cellrowborder" valign="top" width="75.73%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.2 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p83075161597">Type of the user. Available options are <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_uicontrol10577828175519"><b>Local user</b></span>, <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_uicontrol45771428115515"><b>LDAP user</b></span>, <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_uicontrol105771928195520"><b>LDAP user group</b></span>, and <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_uicontrol1824414871312"><b>ADFS user</b></span>.</p>
<ul id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_ul1990354883019"><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_li149973237136"><strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_b1725117014563">ADFS user</strong>: logs in to the <span id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_text9287202517156">OceanProtect</span> in ADFS authentication mode.<div class="note" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_note625915914910"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p11260175920919">This user can be created in 1.6.0 and later versions.</p>
</div></div>
</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_li9903448113012"><strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_b101573055412">Local user</strong>: logs in to the <span id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_text18781133041519">OceanProtect</span> in local authentication mode.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_li47606507304"><strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_b16285638105516">LDAP user</strong>: logs in to the <span id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_text953143610154">OceanProtect</span> in LDAP server authentication mode for unified user information management.</li></ul>
</td>
</tr>
<tr id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_row182931001538"><td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.1 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_p16684451122512">Name</p>
</td>
<td class="cellrowborder" valign="top" width="75.73%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.2 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p106991816191017">Name of the created user.</p>
<ul id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_ul090993912114"><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_li10909739131114">If <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_uicontrol27458494359"><b>LDAP user</b></span> or <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_uicontrol12745194923513"><b>LDAP user group</b></span> is selected, enter the name of the user or user group on the LDAP domain server. Otherwise, the login will fail.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_li12909153916112">If <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_uicontrol640812167398"><b>ADFS user</b></span> is selected, ensure that the username is the same as that created on the ADFS server. Otherwise, the login will fail.</li></ul>
</td>
</tr>
<tr id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_row5181115352414"><td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.1 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p218145310247">Login Authentication Mode</p>
</td>
<td class="cellrowborder" valign="top" width="75.73%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.2 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p8181175320249">Optional values are <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_b1479404604019">Login password</strong> and <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_b1746097174119">Login password+Email One-time password</strong>.</p>
<div class="note" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_note642915713321"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_ul2017184391415"><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_li10171143111413">The <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_b15118173064310">Login password+Email One-time password</strong> mode provides higher security. To use this mode, ensure that you have configured the email address for receiving one-time passwords by referring to <a href="en-us_topic_0000002164788800.html#EN-US_TOPIC_0000002164788800">Managing the Email Service</a>.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_li250104619147">The built-in role <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b125641254171413">Remote Device Administrator</strong> only supports authentication using the <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_uicontrol77361420141517"><b>Login password</b></span>. (The OceanProtect E6000 Appliance does not support <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b3560219191614">Remote Device Administrator</strong>.)</li></ul>
</div></div>
</td>
</tr>
<tr id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_row113515210539"><td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.1 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_p111951656269">Password</p>
</td>
<td class="cellrowborder" valign="top" width="75.73%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.2 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p18466913">Password of the created user. This parameter is displayed only when the user type is <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_uicontrol932234611291"><b>Local user</b></span>.</p>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p19425014">[Value range]</p>
<ul id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_ul40607404"><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_li29922324">The password contains 8 to 64 characters.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_li865461">The password must contain special characters. Special characters include !"#$%&amp;'()*+,-./:;&lt;=&gt;?@[\]^`{_|}~ and spaces.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_li7789154">The password must contain uppercase letters, lowercase letters, and digits.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_li69841427165719">A password cannot contain more than two consecutive identical characters.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_li26941704">A password cannot be the same as the username or the username spelled backwards.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_li204938328395">The password cannot contain the username.</li></ul>
<div class="note" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_note41148748"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_ul34794415"><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_li44714282">To modify the password policy, choose <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_uicontrol1147219242288"><b>System &gt; Security &gt; Security Policies</b></span>.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_li66884222">Users should properly manage passwords to prevent leakage.</li></ul>
</div></div>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p65087093">[Example]</p>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p48912926">a#123456</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_row395744205313"><td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.1 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_p5656171552613">Confirm Password</p>
</td>
<td class="cellrowborder" valign="top" width="75.73%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.2 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p28120176">Confirm password of the new user. </p>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p63141756">[Value range]</p>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p31404899">The value of <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_b82536921983230">Confirm Password</strong> must be the same as that of <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_b189736766383230">Password</strong>.</p>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p14208637">[Example]</p>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p60768877">a#123456</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_row12717141815715"><td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.1 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p9717181817714">Recipient Email Address</p>
</td>
<td class="cellrowborder" valign="top" width="75.73%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.2 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p1771715181370">Email address for receiving one-time passwords. This parameter is displayed only when the user type is <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_b72466620489">Local user</strong> and the login authentication mode is <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_b12361162814811">Login password+Email One-time password</strong>.</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_row116059645312"><td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.1 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_p15537172732610">Role</p>
</td>
<td class="cellrowborder" valign="top" width="75.73%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.2 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p10542948">Click <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b19525205915412">Add</strong>. On the displayed page, select a built-in role provided by the system, or create a role and set user permissions. For details about how to create a role, see <a href="en-us_topic_0000002164788864.html#EN-US_TOPIC_0000002164788864">Creating a Role</a>.</p>
<div class="note" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_note15521630151613"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_ul13295184012454"><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li18295184015455">The built-in roles, except <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b36141018390">Data Protection Administrator</strong>, can only be used as default roles of users, and cannot be bound with resource sets. If such a role is selected, other roles cannot be added.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li53894329199"><strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b56349531079">Data Protection Administrator</strong> can be bound with resource sets and used as the default or other roles of users.</li></ul>
</div></div>
</td>
</tr>
<tr id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_row1390117164520"><td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.1 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_p1239020774517">Default Role</p>
</td>
<td class="cellrowborder" valign="top" width="75.73%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.2 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_p10983133210275">Select an added role as the default role. After login, a user has the permissions of the default role (excluding the permissions on the resources for authorization).</p>
<div class="note" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_note5425123672711"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_p174591242192710">Whether a user has permissions on a resource for authorization depends on the permissions of the role associated with the resource.</p>
</div></div>
</td>
</tr>
<tr id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_row10048987"><td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.1 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_p17825134132616">Description</p>
</td>
<td class="cellrowborder" valign="top" width="75.73%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.2 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p30503372">Description of the new user.</p>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p271410206379">[Value range]</p>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p16730192311379">The description can be left blank or contain up to 255 characters.</p>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p54854063">[Example]</p>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p23924524">User</p>
</td>
</tr>
<tr id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_row126631926183010"><td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.1 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_en-us_topic_0223232411_p1667032633019">Max. Number of User Connections</p>
</td>
<td class="cellrowborder" valign="top" width="75.73%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.2 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p106041754313">Whether to enable limitation on the maximum number of concurrent logins to the system using a user. If this function is disabled, the number is not limited.</p>
<ul id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_ul45221037171211"><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_l3b7686a039aa4a47b79b4d8419cad34f"><span><img id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_image1148893415352" src="en-us_image_0000002200155745.png"></span>: enabled</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_ld7ecb84045f64a08b2ff70b394fde689"><span><img id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_image1878121518360" src="en-us_image_0000002164669422.png"></span>: disabled</li></ul>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p15251324103711">The default status is <span><img id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_image4996162320373" src="en-us_image_0000002164829118.png"></span>.</p>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p72022496349">[Value range]</p>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p157581719113811">The value ranges from <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b17121352194916">1</strong> to <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b94006538498">8</strong>.</p>
<p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p9202184973410">The default value is <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b29801846134915">5</strong>.</p>
<div class="note" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_note99831123152013"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_p498413231202">For the <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b1759138111716">Remote Device Administrator</strong> role, this parameter does not need to be configured (the OceanProtect E6000 Appliance does not support <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_uicontrol560492810184"><b>Remote Device Administrator</b></span>).</p>
</div></div>
</td>
</tr>
<tr id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_row858711110559"><td class="cellrowborder" valign="top" width="24.27%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.1 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_p112998419218">Password Always Valid</p>
</td>
<td class="cellrowborder" valign="top" width="75.73%" headers="mcps1.3.4.2.3.2.1.2.2.3.1.2 "><p id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_p0299164112213">This parameter is mandatory when the <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_uicontrol153881453194211"><b><span id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_text738816539425"><strong>Disaster Recovery Administrator</strong></span></b></span> role is added. To ensure that the password is valid when you switch from <span id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_ph243316510447">eDME</span> to the <span id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_text1143425204416">OceanProtect</span>, enable this function.</p>
<div class="note" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_note67601244380"><span class="notetitle"> NOTE: </span><div class="notebody"><ul id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_ul8475231153317"><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li34758315338">Setting the password to never expire poses security risks.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li247563111331">The OceanProtect E6000 Appliance does not support <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b18700079189">Disaster Recovery Administrator</strong>.</li></ul>
</div></div>
</td>
</tr>
</tbody>
</table>
</div>
</div>
</p></li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_li19950112183913"><span>Click <span class="uicontrol" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_en-us_topic_0000001792505530_uicontrol471113581111"><b><span id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_text953812537451"><strong>Next</strong></span></b></span>.</span></li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li1451420554459"><span>(Optional) Associate the role with resource sets. This allows you to assign the manageable resource scope and bind different resource sets to different role permissions.</span><p><ol type="a" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_ol1609203610473"><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li660918362472">Select the role to be associated with resource sets.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li89634853514">In the resource set list, select existing resource sets. Alternatively, you can click <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b1097290154810">Create Resource Set</strong> to create a resource set.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li10857105411488">Click <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b2036215313487">Next</strong>.</li></ol>
<div class="note" id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_note13989102110555"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_ul12876112816412"><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li8323125824511">Except the <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b49361225154817">Data Protection Administrator</strong>, built-in roles do not support resource authorization.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li4488949792">After a resource set is authorized to a user, the user can only view or perform operations on the copies generated for the corresponding resources after the resource set is created.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li3488164911919">If a copy of a resource generated before the resource is bound and authorized to a user is being used for a restoration job, the job is invisible to the user. In this case, if the user attempts to restore data using this copy, the restoration job may fail due to locking.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li74891349095">If a parent resource is authorized to a user, the user has the same permissions on the parent resource and its child resources. If a child resource is authorized to a user, the user has only the view permission on its parent resource.</li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li14757347132211">Alarm resources do not support rights- and domain-based management. That is, all users can view all alarms after login.</li></ul>
</div></div>
</p></li><li id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_li184208417491"><span>Preview the created user information and click <strong id="EN-US_TOPIC_0000002200115333__en-us_topic_0000002200155481_b1368113158398">Finish</strong>.</span></li></ol>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="en-us_topic_0000002200115389.html">Managing RBAC (Applicable to 1.6.0 and Later Versions)</a></div>
</div>
</div>

<div class="hrcopyright"><hr size="2"></div><div class="hwcopyright">Copyright &copy; Huawei Technologies Co., Ltd.</div></body>
</html>